Principal PM · AI Security · Microsoft Defender
Building the security layer for agentic software — before attackers do.
I lead AI Security Posture Management at Microsoft Defender, helping enterprises discover their AI agent footprint, detect misconfigurations, and assess and reduce risk efficiently, everywhere the agent runs. I write about what breaks as software becomes agentic in Context Window.

25+
years in security
& cloud infrastructure
2
patents in
cloud security
2×
founder — one acquired
(NASDAQ: MGIC)
8+
years at Microsoft
Defender & Azure
“Trust is now an exploit primitive, not a defense.”
— Context Window, Edition #13
01About
Seven years in IDF Cyber Defense. Two companies founded — one acquired (NASDAQ: MGIC), one grew to 50+ people and became Microsoft’s #1 Azure partner in Israel. 8+ years at Microsoft building Defender. Two patents. Promoted to Principal PM to lead AI Security Posture Management in Microsoft Defender.
Now I build AI Security Posture Management from the ground up — agent discovery, risk scoring, attack path analysis, compliance mapping to EU AI Act and NIST AI RMF. I write Context Window and speak at global security conferences.
Posture used to be a photograph — a point-in-time scan that tells you how things stood. But agent risk is created at runtime. The question is no longer “is this configured correctly?” — it’s “given who’s asking, and with what authority, should this happen right now?”
— Asaf
02Writing
Latest briefing
July 13, 2026 · Edition #23
Risk has always been the same equation: how likely a compromise is, times how much it costs when it lands. Likelihood and impact.
This week the world argued, again, about whether a frontier model is too capable to let just anyone use it. In a talk I
For a few remarkable years, the best AI on earth was a commodity. A student in Nairobi, a startup in Tel Aviv, and a For
03Listening

Weekly · AI Security · Podcast & Newsletter
AI-generated voices, AI-curated scripts — human editorial. Each week I break down one signal worth understanding in AI security. Read it in 5 minutes or listen on the go.
“Your security posture isn’t what you built. It’s the weakest thing in your stack that has access to what you built.”
— Context Window, Edition #16
04Building
Product judgment gets sharper when you still make things yourself. Some are serious, some are strange.
Self-grading FIFA World Cup 2026 predictions dashboard. An ensemble model (Dixon-Coles + Elo + momentum) locks scorelines before kickoff, then grades itself against real results.
SourceHow product management changes when AI agents become teammates, users, and attack surfaces. Open-source.
SourcePodcast home — episode archive, RSS, Spotify and Apple integration. Static-first.
AI-powered personal brand engine for thought leaders and creators.
Open-source espresso machine controller — hardware automation meets ritualized product UX.
Source05Connect
For speaking, advisory, AI security strategy, or just to argue about agentic risk — email is best.
[email protected]